DESCRIPTION:A vulnerability has been discovered in the SQL Reports component forJoomla, which can be exploited by malicious people to conduct SQLinjection attacks.

Input passed via the "user_id" parameter toadministrator/components/com_sqlreport/ajax/print.php is not properlysanitised before being used in a SQL query. This can be exploited tomanipulate SQL queries by injecting arbitrary SQL code.

The vulnerability is confirmed in version 1.1. Other versions mayalso be affected.

SOLUTION:Edit the source code to ensure that input is properly sanitised.

GET LASTEST UPDATE

SOCIAL MEDIA

The Joomla!® name and logo is used under a limited license granted by Open Source Matters the trademark holder in the United States and other countries.JoomlaCorner.com is not affiliated with or endorsed by Open Source Matters or the Joomla!® Project